[Solved] How do I parse in go the returned JWT token from google OAuth 2.0? – Go

The Solutions:

Solution 1: Parse JWT using Google’s Public Keys

Validate the Google OAuth 2.0 JWT using Google’s public keys rather than the secret you created. Here’s how to do it:

1. Fetch the JSON Web Key Set (JWKS) from Google’s public keys URL: https://www.googleapis.com/oauth2/v3/certs.
2. Create a new keyfunc object from the fetched JWKS using the NewJSON function from the keyfunc library.
3. Use the Parse function from the jwt library to parse the JWT from Google using the Keyfunc as the key retrieval function.
4. Check if the JWT is valid and access the claims if it is.

Example code for parsing the JWT using Google’s public keys:

func parseJWT(tokenString string) {
    jwksJSON := json.RawMessage(getGoogleCerts())
    jwks, _ := keyfunc.NewJSON(jwksJSON)

    token, _ := jwt.Parse(tokenString, jwks.Keyfunc)
    if token.Valid {
        claims := token.Claims.(jwt.MapClaims)
        fmt.Println(claims["email"], claims)
    } else {
        fmt.Println("Invalid JWT")
    }
}

5. Remember to cache the JWKS JSON for a period of time as specified in the Cache-Control header of the response from Google’s public keys URL.

Video Explanation:

The following video, titled "How to fix Unexpected Token in JSON error (for web developers ...", provides additional insights and in-depth exploration related to the topics discussed in this post.

Not a programmer? Read this! ** - If you get this error in an app you didn't make, and/or you're not a web developer... this video will not ...